Description:
This update resolves the following vulnerabilities, which may cause elevation of privileges on the affected system:
The Windows Microsoft Distributed Transaction Coordinator (MSDTC) vulnerability exists in Windows platforms. The NetworkService token that is left by MSDTC transactions can be impersonated by any process that calls on the said token. When exploited successfully, it allows a remote attacker to take complete control of an affected system.
An attacker can exploit the vulnerability that exists in Windows Management Instrumentation (WMI) Service Isolation due to the improper way of isolating processes that run on NetworkService or LocalService accounts. The same vulnerability exists in the RPCSS service.When exploited successfully, both vulnerabilities may allow a remote attacker to take complete control of an affected system.
The incorrect placing of access control lists done by Windows on threads in the ThreadPool. When exploited successfully, both vulnerabilities may allow a remote attacker to take complete control of an affected system. |